SAI360 Reviews and Ratings

Rating: 7.1 out of 10

Score

7.1 out of 10

Community insights

TrustRadius Insights for SAI360 are summaries of user sentiment data from TrustRadius reviews and, when necessary, third party data sources.

Pros

Continuous Feature Rollout: Users have appreciated the continuous evaluation and rollout of new features based on customer feedback. Several reviewers have mentioned that this ongoing development helps them stay ahead in their compliance efforts and adapt to changing regulatory requirements.

Responsive Support Team: The support staff at Compliance 360, known as SAI360, is highly regarded for their responsiveness. Many users have stated that the support team promptly addresses their questions and problems, typically providing assistance within a few hours of submitting a ticket. This level of support has been invaluable in ensuring a smooth user experience.

Customizable Workflows and Forms: The ability to customize workflows and forms within the platform is highly praised by users. They find it easy to add fields and options to accommodate changing business needs, making Compliance 360 adaptable to their specific data requirements. These customization capabilities allow users to manage their work according to their own processes, enhancing efficiency and effectiveness in compliance management.

Reviews

6 Reviews

Great platform to training employees regarding best practices in different topics

Rating: 7 out of 10

Incentivized

December 8, 2022

Use Cases and Deployment Scope

We recommended SAI Ethics and Compliance Learning courses to train complete teams for satisfying the required training for implementing and certifying standardized management systems (ISO Standards) about multiple topics: anti-bravery, anti-corruption, data protection, HS&E, compliance, etc.

The library has multiple courses that support this goals for organizations. These courses are industry agnostic for most cases.

Pros

Communicating best practices for each topic covered
Easy to use platform
Tracking for multiple users

Cons

Detailed content about specific industries or situations
Different length and deep for each topic

Likelihood to Recommend

If you are planning on training a workforce about general guidelines and best practices of the topics covered in the platform. Especially if you don't have the time or resources available to develop an in-house training course.

Fernando Moreno

Management Consultant in Professional Services at INSI (1-10 employees)

Vetted Review

2 years of experience

Configurable With Potential

Rating: 7 out of 10

Incentivized

June 28, 2022

Use Cases and Deployment Scope

SAI360 is one of the top 3 systems for our legal risk and compliance department. We use SAI360 to manage enterprise risk, regulatory complaints, product new laws & regs, and conflict of interest assessments.

Pros

Fully configurable forms & fields
Fully configurable workflow
No code platform

Cons

Reporting
Legacy modules (i.e. tasks)
Look and feel
Intuitive UI

Likelihood to Recommend

The tool is very configurable, allowing it to adapt to multiple use cases and groups. The universal assessment module was able to meet most of our needs for conflicts of interest, and the incident module has been used for years in our regulatory complaint team. The tool falls apart, preventing further adoption due to the limitations of their legacy tasks module, which is used everywhere (but is in the process of a major update); and the reporting capabilities are limited to pre-configured dashboards or limited data tables & exports. Our risk team has found great value through the import tool to mass create the quarterly reviews.

Larissa Munz

Sr. Manager Technology & Operation at CUNA Mutual Group (1001-5000 employees)

Vetted Review

5 years of experience

View profile

A risk and compliance manager

Rating: 8 out of 10

Incentivized

June 24, 2022

Use Cases and Deployment Scope

We have used SAI360 for our risk management analysis dashboards. It was mostly used to proactively trigger plan activations and notifications to everyone who needs to see them. SAI360 also provides an inbuilt framework(best practice), which also helped in transition from our spreadsheets. The dashboards are pretty awesome to use.

Pros

The dashboards are pretty amazing to use and see real-time data
Workflow analysis
Another advantage is that it's easier to see what activities are open or overdue.

Cons

Customized workflows are a little tedious to create
Not ideal to have to report separate in Business objects.
Within the system, the internal audit module does not allow for the development of an audit report.

Likelihood to Recommend

The usage of ROAM, as well as the integration of external programmes through API and import functions, has almost reduced duplication of work. One thing to keep in mind is that your use cases must be very clear. There are a lot of SAI solutions, and their titles don't always correspond to what they actually perform.

Verified User

Consultant in Information Technology (5001-10,000 employees)

Vetted Review

1 year of experience

Stay in the game with C360

Rating: 8 out of 10

Incentivized

February 7, 2019

Use Cases and Deployment Scope

Compliance 360 is used to manage and track the day to day activities of our GRC department across all business owners. The system has an audit trail so you can view changes to policies revision by the staff. Currently, the application is only used by the GRC department and eventually the entire company will adopt the application.

Pros

Customized unified design platform
Modules that fit your organization
Low technology involvement with information department.
Built on foundational platforms some bidirectional in the ERM framework with TPRM contracts
Single sign-on web-based applications

Cons

Enhancement with modules, they are siloed based on platforms.
Customer support for success
Form configuration and setup of the reports is a bit tedious
The report printout style sheet needs some improvement
The color scheme in the UI

Likelihood to Recommend

Communications to vendors and sending information to DHS and other state departments is easily sent and tracked.

Kathy Diclemente

Quality Specialist in Information Technology at UHS (5001-10,000 employees)

Vetted Review

1 year of experience

View profile

BWise GRC Implementation Review

Rating: 9 out of 10

Incentivized

February 11, 2016

Use Cases and Deployment Scope

BWise is used as a GRC platform to manage multiple compliance initiatives for SOX, IT compliance, PCI compliance, Procurement compliance, Internal Audit, and Management Self-testing.

BWise is integrated with TeamMate audit tracking, for internal audit testing and annual compliance testing.

BWise is used for testing across the enterprise, giving management a view into the control effectiveness, across the company, and across compliance initiatives.

Pros

Bwise is very customizable to accommodate multiple compliance initiatives, across the enterprise.
Integration with TeamMate, made tracking audit testing and results easy to stay on top of.
Being able to map controls, and test once, and report control effectiveness for multiple initiatives was important.

Cons

Integration with SAP for continuous control monitoring.
Control mapping to standards: ISO; COSO; COBIT; HIPAA; SP800_53 (NIST); FedRAMP; PCI_DSS; BITS; GAAP; AICPA; BSI; CCM; COPPA; CSA
Surveys.

Likelihood to Recommend

Well suited for general compliance, multiple initiatives, and integration with TeamMate.

SAP GRC Process control may be better suited for an SAP environment.

Oracle GRC may be better suited for an Oracle environment.

Overall, BWise is a very cost effective, and flexible solution.

Verified User

Team Lead in Finance and Accounting (10,001+ employees)

Vetted Review

3 years of experience

BWise - The peaks and valleys of our GRC journey

Rating: 6 out of 10

Incentivized

November 20, 2015

Use Cases and Deployment Scope

The BWise application is the tool we're using to support and implement our governance, risk, and compliance project. It is an ERM (Enterprise Risk Management) corporate-wide initiative sponsored by our executive officers. It encompasses our financial, compliance, audit and risk divisions. This project objective is to increase integration among the aforementioned divisions, minimize silos, and improve efficiency and reporting to senior management.

Pros

Great reporting tool (uses SAP Business Objects). It is quite flexible on types of reports that can be created and supported. Also the reporting consultants are very competent and nice.
Highly customizable solution: almost everything can be tailored to an organization's needs, assessments, audits, issues, recommendations, tasks, etc. However, there's a trade-off between customization and the integration of different areas of the organization.
Increases visibility and efficiency in the organization. BWise offers centralized repositories (catalogs) that can be easily accessed and used by everyone in the organization (e.g. Process catalog, Policies and Procedures catalog, Risks, Controls, Laws catalogs, etc.). Also, the application allows findings on controls tested by Audit to be automatically reflected in controls monitored by SOX for example, without the need for SOX to retest them. So one area can leverage on the work of other areas increasing operational efficiency.
Increases integration and avoids silos. By choosing the correct design (e.g. Risk Workshops instead of Open Assessments), one area can see and benefit from another areas' work. An example was mentioned above; another would be Operational Risk area considering the results of Business Continuity, Vendor Management, Info Security, etc. assessments when carrying out theirs. Additionally, processes can be integrated: when contracting a new vendor for instance, one can include questions about data confidentiality and usage of models in the Vendor risk assessment. Answers to these could then trigger Info Sec / Model Risk assessments.
Increases accountability. Application provides full audit/change log with the type of change, name of executor, and date of change.
Easier follow-up. BWise sends automatic emails with reminders to the people required to take action on an issue, assessment, etc.

Cons

Internal Quality Check. I think this is the most prominent area BWise should improve on. Currently they lack internal Quality Check/Review.
Internal dialogue among employees. When various consultants are involved in the same project, their communication and updating each-other could be a bit stronger.
Inclusion of content. The application could benefit considerably from including some out-of-the-box content (e.g. COSO principles, Risk catalogs, etc.).
Risk Workshop functionality. This is one of the main functionalities that allows integration among different areas of an organization. However, it comes pretty much "take it or leave it"; it's almost not customizable.
Consultants' transparency. When an organization requests a particular design of the application or solicits changes to such design, it would be great if BWise consultants could always and more thoroughly advise on the implications of these changes, design to the organization's strategic objectives and ultimate target.
Product features. Application has room for improving its programming, e.g. providing internal checks when creating/answering an issue/finding (for instance, remedy implementation date cannot be before the recommendation response date or the recommendation creation date). Another example would be the possibility of automatic periodic followup (e.g. every 1 month until completion).

Likelihood to Recommend

- What does our organization aim to achieve with the application?

- Who will be using the tool?

- How mature is our organization in the areas/processes that will fall in scope?

- Are our areas averse to change?

- How flexible and prone are our areas to modify their way of doing business and processes/procedures to accommodate BWise?

- After implementation, who and how will perform application maintenance and change management (e.g. how easy will it be to update user privileges, central catalogs, assessment configurations, etc).

Verified User

Analyst (5001-10,000 employees)

Vetted Review

2 years of experience

Loading Reviews List....

Home
,
Governance, Risk & Compliance
,
SAI360
,
Reviews and Ratings

BWise - The peaks and valleys of our GRC journey

Rating: 6 out of 10

Incentivized

November 20, 2015

Use Cases and Deployment Scope

Pros

Great reporting tool (uses SAP Business Objects). It is quite flexible on types of reports that can be created and supported. Also the reporting consultants are very competent and nice.
Highly customizable solution: almost everything can be tailored to an organization's needs, assessments, audits, issues, recommendations, tasks, etc. However, there's a trade-off between customization and the integration of different areas of the organization.
Increases visibility and efficiency in the organization. BWise offers centralized repositories (catalogs) that can be easily accessed and used by everyone in the organization (e.g. Process catalog, Policies and Procedures catalog, Risks, Controls, Laws catalogs, etc.). Also, the application allows findings on controls tested by Audit to be automatically reflected in controls monitored by SOX for example, without the need for SOX to retest them. So one area can leverage on the work of other areas increasing operational efficiency.
Increases integration and avoids silos. By choosing the correct design (e.g. Risk Workshops instead of Open Assessments), one area can see and benefit from another areas' work. An example was mentioned above; another would be Operational Risk area considering the results of Business Continuity, Vendor Management, Info Security, etc. assessments when carrying out theirs. Additionally, processes can be integrated: when contracting a new vendor for instance, one can include questions about data confidentiality and usage of models in the Vendor risk assessment. Answers to these could then trigger Info Sec / Model Risk assessments.
Increases accountability. Application provides full audit/change log with the type of change, name of executor, and date of change.
Easier follow-up. BWise sends automatic emails with reminders to the people required to take action on an issue, assessment, etc.

Cons

Internal Quality Check. I think this is the most prominent area BWise should improve on. Currently they lack internal Quality Check/Review.
Internal dialogue among employees. When various consultants are involved in the same project, their communication and updating each-other could be a bit stronger.
Inclusion of content. The application could benefit considerably from including some out-of-the-box content (e.g. COSO principles, Risk catalogs, etc.).
Risk Workshop functionality. This is one of the main functionalities that allows integration among different areas of an organization. However, it comes pretty much "take it or leave it"; it's almost not customizable.
Consultants' transparency. When an organization requests a particular design of the application or solicits changes to such design, it would be great if BWise consultants could always and more thoroughly advise on the implications of these changes, design to the organization's strategic objectives and ultimate target.
Product features. Application has room for improving its programming, e.g. providing internal checks when creating/answering an issue/finding (for instance, remedy implementation date cannot be before the recommendation response date or the recommendation creation date). Another example would be the possibility of automatic periodic followup (e.g. every 1 month until completion).

Likelihood to Recommend

- What does our organization aim to achieve with the application?

- Who will be using the tool?

- How mature is our organization in the areas/processes that will fall in scope?

- Are our areas averse to change?

- How flexible and prone are our areas to modify their way of doing business and processes/procedures to accommodate BWise?

- After implementation, who and how will perform application maintenance and change management (e.g. how easy will it be to update user privileges, central catalogs, assessment configurations, etc).

Verified User

Analyst (5001-10,000 employees)

Vetted Review

2 years of experience